Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
File: lQPIUJD5zC4inTj96rrmJlCL3rg.mft (raw, json)
Hash identifier: ih9TyBK5AiZ9QfCzdsbPv1xY0FAEp5qQLwxPuGiWZM0=
Subject key identifier: 61:A7:0A:A3:C8:66:EC:6C:26:91:A5:EE:89:9D:88:0E:7D:02:60:72
Authority key identifier: 95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
Certificate issuer: /CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Certificate serial: 01958FCEDF69E33E81689DE52823D424557A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
Manifest number: 01B9
Signing time: Thu 13 Mar 2025 14:00:54 +0000
Manifest this update: Thu 13 Mar 2025 14:00:54 +0000
Manifest next update: Fri 14 Mar 2025 14:00:54 +0000
Files and hashes: 1: lQPIUJD5zC4inTj96rrmJlCL3rg.crl (hash: 7p9qb5Ff5mJ9am4VH+08zXnCh3BSFCcPvhz+oh/riIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:ce:df:69:e3:3e:81:68:9d:e5:28:23:d4:24:55:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9503c85090f9cc2e229d38fdeabae626508bdeb8
Validity
Not Before: Mar 13 14:00:54 2025 GMT
Not After : Mar 14 14:00:54 2025 GMT
Subject: CN=61a70aa3c866ec6c2691a5ee899d880e7d026072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7e:ca:99:df:62:af:b6:e3:61:30:fb:60:bd:
71:37:9f:b1:4e:df:22:70:72:76:dc:b0:e6:2b:9b:
63:bc:05:46:7b:87:8f:0a:31:a5:ca:50:5d:69:07:
ce:bd:48:54:bf:48:ea:4a:fe:44:25:0f:0b:5e:68:
34:c8:b3:fa:97:79:3b:50:04:13:8b:c1:e0:49:07:
2a:4e:c6:f1:76:d3:d9:8b:51:10:5f:26:f7:52:8c:
c6:28:24:89:80:24:1f:73:84:76:52:2a:43:fa:f1:
20:67:ce:44:23:e5:ad:0d:ca:8d:9c:63:05:0d:8f:
0a:cd:26:f4:cf:0b:48:e3:50:46:52:22:3a:28:b8:
26:62:3a:e9:9a:c2:70:90:c3:e8:f9:e3:35:da:6e:
ce:f3:d8:35:e1:d0:59:f2:57:87:f2:dc:b9:7d:26:
20:e5:1c:98:92:07:e3:6b:bf:d0:3a:01:f5:1a:c7:
6e:76:ea:fc:b3:bf:ce:79:97:b7:3c:4f:b4:9f:8a:
7f:ef:4f:0b:31:31:bc:3a:ec:05:4b:e5:4a:b9:b4:
8d:68:95:1f:b8:f8:b7:42:70:7d:38:1e:42:89:57:
13:bb:0c:8e:45:3c:7e:a8:92:9a:ea:b6:84:52:f3:
02:5f:62:c1:bb:eb:c0:27:c5:a3:a1:7d:52:9d:9b:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A7:0A:A3:C8:66:EC:6C:26:91:A5:EE:89:9D:88:0E:7D:02:60:72
X509v3 Authority Key Identifier:
keyid:95:03:C8:50:90:F9:CC:2E:22:9D:38:FD:EA:BA:E6:26:50:8B:DE:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQPIUJD5zC4inTj96rrmJlCL3rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/39294c-ebd1-4ef4-915e-f0dd879ae53a/1/lQPIUJD5zC4inTj96rrmJlCL3rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:34:d3:96:a4:e2:60:7e:bb:51:9a:dc:5b:f1:b2:ac:94:7d:
c3:6f:19:83:b9:6d:a1:3d:55:ed:45:1c:92:8b:15:bc:30:c5:
5c:ea:05:10:4a:d0:1b:e2:a7:66:c2:97:ac:6d:0d:b5:7f:e5:
18:5a:71:ad:c6:85:5f:c3:7b:e8:3e:b5:7f:63:2f:a0:3b:e1:
6e:0d:b3:50:bf:a7:91:e9:9f:3a:b2:6b:28:1c:df:cd:8d:a5:
65:6d:a8:47:ef:85:59:41:47:91:d7:a7:b4:2d:a3:e1:dc:b8:
49:4a:61:a2:20:8d:22:2d:32:a6:0a:f8:66:2b:8b:21:86:9d:
4a:02:6a:35:e7:0e:49:c3:57:9b:80:45:9e:2e:92:41:6c:e9:
5c:92:02:02:c3:a5:7a:01:55:19:2f:f4:51:4e:16:1e:85:04:
90:6f:ee:18:72:62:fe:3b:84:33:a5:2c:0d:db:bd:95:45:82:
46:17:de:2f:72:7e:a7:33:b7:93:3d:1b:30:85:c6:0b:00:3b:
0b:5c:0f:74:39:b1:22:3b:ea:c1:70:ba:b3:aa:eb:3f:3c:2a:
3a:c8:9a:73:96:e5:44:be:d6:75:94:a9:d2:a1:7c:c6:de:a7:
dd:dc:ae:54:c9:98:55:a7:fc:46:1c:45:c3:4b:e7:40:13:84:
84:ce:46:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:49:14 2025 by rpki-client